This article focuses on implementing PKI for Istio in a multi-cluster environment. It details the combination of EJBCA and cert-manager, including setup steps and emphasizes the importance of PKI best practices for secure and compliant service mesh.
Certificate
Envoy Gateway Overview: Modern Kubernetes Ingress with Envoy Gateway and the Gateway API
This article explores the advantages of deploying Envoy Gateway on Kubernetes, its relationship with other service mesh components, and why it’s the ideal choice for exposing services to the public internet.
How Are Certificates Managed in Istio?
This blog post will explain how Istio handles certificate management.
Managing Certificates in Istio with cert-manager and SPIRE
This article describes how to integrate SPIRE and use cert-manager to achieve fine-grained certificate management and certificate rotation.